Restricted Developer deployer

Estimated reading: 9 minutes 337 views

This type of user can create or edit application, permission, user and role of the applications for which the user has been granted ‘Membership Manager’ role.

  • The Restricted Developer Deployer will be assigned both the Deployer and Restricted Developer permissions sets by default.
  • The Restricted Developer Deployer will be assigned, the following permissions by default:
DescriptionRemarks
Applications\Can Deploy ApplicationThis permission allows deploying application.
Applications\Can Read ApplicationThis permission gives you the right to read an application.
Applications\Can Update ApplicationThis permission gives you the right to update an application.
Applications\Can Update ApplicationThis permission gives you the right to update an application.
Audit and Reporting\Can Read Event LogThis permission gives you the right to read an Event Log.
Permissions\Can Create PermissionThis permission gives you the right to create a permission.
Permissions\Can Delete PermissionThis permission gives you the right to delete a permission.
Permissions\Can Read PermissionThis permission gives you the right to read a permission.
Permissions\Can Update PermissionThis permission gives you the right to update a permission.
Permission Sets\Can Create Permission SetThis permission gives you the right to create a permission Set.
Permission Sets\Can Delete Permission SetThis permission gives you the right to delete a permission set.
Permission Sets\Can Read Permission SetThis permission gives you the right to read a permission set.
Permission Sets\Can Update Permission SetThis permission gives you the right to update a permission set.
Permission Sets\Can Grant Revoke Permission Sets To Application RolesThis permission gives you the right to grant or revoke the permission sets of the application roles.
Permission Sets\Can Grant Revoke Permission Sets To
Shared Roles
This permission gives you the right to grant or revoke the permission sets of the shared roles.
Roles\Can Create Application RoleThis permission gives you the right to create an application role.
Roles\Can Update Application RoleThis permission gives you the right to update an application role.
Roles\Can Grant Revoke Application Roles To GroupsThis permission gives you the right to grant or revoke application roles to groups.
Roles\Can Grant Revoke Application Roles To UsersThis permission gives you the right to grant or revoke application roles to users.
Roles\Can Read Application RoleThis permission gives you the right to read an application role.
Roles\Can Read Shared RoleThis permission gives you the right to read a shared role.
  • To explore the impact of each permission please click on the relevant link below:

Please Note: The sections on which the role has no impact has not been listed

Impact of Restricted Developer Deployer Role on Applications

This module explains the impact on the applications if the user has been granted the Restricted Developer Deployer Role.

  • The User will be assigned the following permissions:
DescriptionRemarks
Can Deploy ApplicationThis permission gives you the right to deploy applications.
Can Read ApplicationThis permission gives you the right to read applications for which you have the role “Membership Manager”.
Can Update ApplicationThis permission gives you the right to update an application.
  • When the user logs in using the assigned mode of authentication, the following screen will be displayed.
  • The applications for which the user has Membership Manager role will be displayed.
  • The user can deploy the application, since the user has the Can Deploy Application permission.
  • Since the user has permissions Can Read Application, when the user clicks on application name the application details (A) will be displayed.
  • The application information will be available in an editable mode, since the user has the Can Update Application privilege.
  • The user can update information related to the applications.

Impact of Restricted Developer Role on Audit and Reporting

This module explains the impact on the audit and reporting if the user has been granted the Restricted Developer Deployer Role.

  • The User will be assigned the following permissions:
DescriptionRemarks
Can Read Event LogThis permission gives you the right to read an Event Log.
  • When the user logs in using the assigned mode of authentication, the following screen will be displayed.
  • The user will be able to view list of all the applications (A) for which he has been granted the Membership Manager Role..
  • Can Read Event Log permission allows access to viewing the event log as shown below:

Impact of Restricted Developer Deployer Role on Groups

This module explains the impact on the groups if the user has been granted the Restricted Developer Deployer Role.

  • The User will be assigned following permissions:
DescriptionRemarks
Can Read GroupThis permission gives you the right to read the group.
  • When the user logs in using the assigned mode of authentication, the following screen will be displayed.
  • The user will be able to view list of all the applications (A) for which he has been granted the Membership Manager Role..
  • Since the user has permissions to Can Read Group, the user will be able to view the group that has been assigned to the user.
  • The parent groups of the assigned group will also be displayed.
  • Depending on the user privileges and assigned group privileges the list of privileges will be decided automatically.

Impact of Restricted Developer Deployer Role on Permissions

This module explains the impact on the permissions if the user has been granted the Restricted Developer Deployer Role.

  • The User will be assigned the following permissions:
DescriptionRemarks
Can Create PermissionThis permission gives you the right to create a permission.
Can Delete PermissionThis permission gives you the right to delete a permission.
Can Read PermissionThis permission gives you the right to read a permission.
Can Update PermissionThis permission gives you the right to update a permission.
  • When the user logs in using the assigned mode of authentication, the following screen will be displayed.
  • The user will be able to view list of all the applications (A).
  • Since the user has permissions to Create, Delete, Read and Update permissions, the user will be able to update existing permission besides having the privilege to create the permission.
  • Additionally the user can manage the other permission related properties using the available options.

Impact of Restricted Developer Deployer Role on Permission Sets

This module explains the impact on the permission sets if the user has been granted the Restricted Developer Deployer Role.

  • The User will be assigned the following permissions:
DescriptionRemarks
Can Create Permission SetThis permission gives you the right to create a permission Set.
Can Delete Permission SetThis permission gives you the right to delete a permission Set.
Can Grant Revoke Permission Sets To Application RolesThis permission gives you the right to grant or revoke the permission sets of the application roles.
Can Grant Revoke Permission Sets To Shared RolesThis permission gives you the right to grant or revoke the permission sets of the shared roles.
Can Read Permission SetThis permission gives you the right to read permission Set.
Can Update Permission SetThis permission gives you the right to update a permission Set.
  • When the user logs in using the assigned mode of authentication, the following screen will be displayed.
  • The user will be able to view list of all the applications (A) for which he has been granted the Membership Manager Role..
  • Since the user has permissions to Create, Delete, Read and Update permission sets, the user will be able to update an existing permission set besides having the privilege to create the permission sets.
  • Additionally the user can manage the other permission set related properties using the available options.
  • Since the user has also been granted the Can Grant Revoke Permission Sets to Application Roles privilege the user can Grant permission sets to the selected role as shown below.
  • The user can also grant the permission set to the Shared roles, since the user has Can Grant Revoke Permission Sets to Shared Roles privilege.

Impact of Restricted Developer Deployer Role on Roles

This module explains the impact on the roles if the user has been granted the Restricted Developer Deployer Role.

  • The User will be assigned the following permissions:
DescriptionRemarks
Can Create Application RoleThis permission gives you the right to create an application role.
Can Update Application RoleThis permission gives you the right to update an application role.
Can Grant Revoke Application Roles To GroupsThis permission gives you the right to grant or revoke application roles to groups.
Can Grant Revoke Application Roles To UsersThis permission gives you the right to grant or revoke application roles to users.
Can Read Application RoleThis permission gives you the right to read an application role.
Can Read Shared RoleThis permission gives you the right to read a shared role.
  • When the user logs in using the assigned mode of authentication, the following screen will be displayed.
  • The user will be able to view list of all the applications (A).
  • The user can create a new role under an application, since the user has the Can Create Application Role privilege.
  • The new role will be listed under the Application>Roles option. The user can view the role details by clicking on the role name as shown below:
  • Since the user has the Can Read Application Role and Can Update Application Role privilege the user can view and update the role details.
  • Since the user has also been granted the Can Grant Revoke Application Roles To Users privilege the user can grant/revoke new roles to user using options “Grant role to users”  & “Revoke role from users” available under tab “Granted User”.

Please Note: You can also grant/revoke roles of users Users> Username> Roles> Edit Roles option. Click here (missing link) to know more.

  • Grant role to users: When you select option “Grant role to users” you are provided with a screen to select users to whom the role is to be assigned.

Once the users are successfully assigned to the Group, below message will appear

  • Revoke role from users: When you select option “Revoke role from users” you will be asked for confirmation, as shown below:

Once confirmed by clicking on option “YES” , the role will be successfully revoked and below message will appear:

  • The user can also grant the new role to the groups, since the user has the Can Grant Revoke Application Roles To Groups privilege.
  • The new role will be listed under the application, the user can select and grant role.
  • Since the user has the Can Read Shared Role privilege the shared role information will be displayed in the read only mode.
  • Additionally the Can Read Special Role privilege will allow the special role information to be displayed in read only mode.

See Also: